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Sir: 

This is further to the Notification of Non-Compliant Appeal Brief dated April 25, 2007. 
Applicant advises that an Amended Brief on Appeal is being submitted concurrently herewith. 



REMARKS 

As requested in the above-identified Notification, the "Issues" and "Grouping of Claims" 
sections have been removed and the other headings have been amended to read as set forth in 
37 CFR 41 .37(c) including the appendices. As such, the Amended Brief on Appeal is believed 
to be in compliance with 37 CFR 41.37(c). 

The "Summary of Claimed Subject Matter" was objected to as the Examiner believes it 
does not "map the independent claims on appeal to the specification by page, and line number 
and to the drawings if any." Although the Applicant believes that this section did in fact originally 
include numerous references to the specification, drawings and reference numerals, further 
reference information has been added as reflected in the Amended Brief on Appeal submitted 
herewith. Accordingly, the Amended Brief on Appeal is believed to be in compliance with 37 
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Applicant: LAMBERT, Robert J. 
Filed: January 29, 2002 

Title: METHOD AND APPARATUS FOR PERFORMING FINITE FIELD 
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Art Unit: 2131 
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AMENDED BRIEF ON APPEAL 

This Amended Brief on Appeal is submitted in response to the Notification of Non- 
Compliant Appeal Brief dated April 25, 2007. Appellant advises that a response to said 
Notification is being filed concurrently herewith. 

This is an appeal of the Final Office Action of the Examiner dated May 26, 2006. A 
Notice of Appeal from the Primary Examiner to the Board of Patent Appeals and Interferences 
was timely filed with the Office on October 26, 2006, along with a request for a two-month 
extension of time. 

REAL PARTY IN INTEREST; 



The real party in interest in the present application is Certicom Corp. The assignment 
from the Applicant to Certicom Corp. was registered with the office on reel/frame 012840/0504 
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on April 26, 2002. 

RELATED APPEALS AND INTERFERENCES : 

There are no related appeals or interferences known to the Appellant, Appellant's 
representative or assignee which will directly affect or be directly affected by or have a bearing 
on the Board's decision in the pending appeal 

STATUS OF CLAIMS: 

In this application, claims 1 and 3-11 are pending, and claim 2 has been cancelled 
without prejudice. Claims 1 and 3-1 1 have been finally rejected and are part of the pending 
appeal Please refer to the Claims Appendix for a complete listing of the claims involved in this 
appeal 

STATUS OF AMENDMENTS: 

In the response filed by the Applicant on March 16, 2006, claim 1 was amended to recite 
that upon completion of the computation performed on the machine words, a modular reduction 
is performed to reduce the result to a predetermined number of words. Claim 2 was cancelled, 
claims 4 and 6 were amended similar to claim 1, and new claims 7-1 1 were added. 

The above-noted amendments were entered by the Examiner, as indicated in the Final 
Rejection dated May 26, 2006. 

A response was filed by the Applicant on August 28, 2006, however, no further 
amendments were made. 

An advisory action was mailed on September 14, 2006 and a Notice of Appeal filed on 
October 26, 2006. No further amendments were made. 

SUMMARY OF CLAIMED SUBJECT MATTER: 

The claimed invention relates, in general terms, to finite field operations (e.g. see page 1, 
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lines 8-9 and Fig. 8) and to methods for operating on elements in a finite field (e.g. see page 9, 
lines 19-24 and elements 103 and 1 13 shown in Fig. 2). 

It has been recognized by the Applicant that by not reducing fully as was previously 
done, but rather to reduce the result of the computation to a predetermined number of words, 
effort can be saved and randomness can be added to the representation since, e.g., there are then 
many ways to write the value, when not completely reduced (see page 12, lines 22-26). 

In one aspect, a finite field multiplier (e.g. see page 10, lines 20-29 regarding engine 400 
having FF multiplication operator 434 as shown in Fig. 5) is provided that is operable to multiply 
two elements of one of a plurality of finite fields (e.g. see page 9, lines 19-24 and elements 103, 
1 13 in Figure 2), where the finite fields are partitioned into subsets. The multiplier comprises a 
plurality of word sized finite field multipliers (e.g. see page 12, line 27 to page 13, line 5 
regarding elements wO to wn shown in Fig. 10), where each is suitable for multiplying elements 
of each finite field in a respective subset of the plurality of finite fields. The multiplier also 
comprises a finite field reducer (e.g. see page 12, lines 17-26 regarding finite field reduction 
element 450 shown in Fig, 5), which is configured to perform reduction in the finite field. The 
multiplier also comprises a processor (e.g. see processor 14, Fig. 1 and discussed on page 9, lines 
7-18). The processor (14) is configured to operate the finite field multiplier particular to the 
finite field to be operated on, to obtain an intermediate product (e.g. stored in registers w2 and 
w3, see Fig. 13 and page 14, lines 23-28). The processor (14) is also configured to operate the 
finite field reducer (450) on the intermediate product to obtain the product of the two elements 
(e.g. see step 1410 in Fig 14 and page 14, line 29 to page 15, line 5) reduced to a predetermined 
number of words. 

In another aspect, a method for adding elements of a finite field F 2 , n is provided (e.g. see 

Fig. 12 and page 14, lines 3-1 1), where m is less than a predetermined number n. The method 
comprises storing a first element and a second element (page 14, lines 4-5) in a pair of registers 
(e.g. see steps 1202 and 1204 in Figure 12 and page 14, lines 3-U), where each of the registers 
comprises the predetermined number n of machine words. An accumulator (e.g. element w2 
shown in Fig. 1 1, see also page 14, lines 23-28) is established, having the predetermined number 
n of machine words, and for each of the machine words in the accumulator (w2), the exclusive-or 
of the corresponding machine words representing the first and second elements is computed (e.g. 
steps 1206-1216 discussed on page 14, lines 7-1 1 and in Figure 12) to obtain a representation of 
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a result of adding the two elements. Upon completion of the computation, a modular reduction is 
then performed to reduce the result to a predetermined number of words (e.g. see page 12, lines 
20-26). 

In yet another aspect, a method of performing a finite field operation on at least one 
element r and a finite field engine for the same are provided, which also comprise reducing the 
result to a predetermined number of words (see e.g. page 10, lines 20-29 regarding finite field 
engine 400). 

In yet another aspect, a cryptographic system is provided that is configured for 
performing the methods described above (see page 9, line 7 to page 1 1, line 4). The 
cryptographic system comprises a computational apparatus that performs modular reduction (e.g. 
finite field engine 400) subsequent to running a routine for a plurality of word sized finite fields. 

GROUNDS OF REJECTION TO BE REVIEWED ON APPEAL: 

Claims 1 and 3-1 1 are pending in this application and do not stand allowed. 

Claims 1 and 3-1 1 have been finally rejected by the Examiner under 35 U.S.C 102(e) as 
being unpatentable over U.S. Patent No. 6,230,179 to Dworkin et al. (hereinafter "Dworkin"). 

In the office action dated September 16, 2005, the Examiner rejected original claims 1-6 
as being anticipated by U.S. Publication No, 2002/0136402 Al to Vanstone. In the response 
filed on March 16, 2006, the Appellant amended claims 1, 4 and 6, canceled claim 2, and added 
new claims 7-1 L Claims 1, 4 and 6 were amended to recite and/or emphasize that upon 
completion of the computation performed on die machine words, a modular reduction is 
performed to reduce the result to a predetermined number of words. 

The above-noted amendments appear to have overcome the rejection in view of the 
Vanstone reference, however, the Examiner then finally rejected claims 1 and 3-1 1 as being 
anticipated by Dworkin. In the final office action, the Examiner stated that: "Applicant's 
amendment necessitated the new ground(s) of rejection presented in this Office action. 
Accordingly, this action is made final" [emphasis removed] 

In the new grounds of rejection, the Examiner contends that Dworkin teaches each and 
every element recited in claims 1 and 3-11, including: "upon completion of said computation, 
performing modular reduction to reduce said result to a predetermined number of words." The 
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Examiner cites column 4, lines 29-34 and column 10, lines 43-53 as teaching such a feature. 

A response after final rejection was filed on August 28, 2006 arguing that Dworkin does 
not in fact teach such a feature and cannot anticipate. An advisory action was issued on 
September 14, 2006 indicating that the arguments were not persuasive. As such, claims 1 and 3- 
11 stand rejected. 

The Appellant maintains their previous arguments regarding Dworkin, in particular that 
Dworkin does not teach reducing the result after the computation, and does not operate on 
machine words. The Appellant therefore respectfully traverses the Examiner's rejections. 

ARGUMENT: 

The Examiner has rejected claims 1 and 3-1 1 under 35 ILS.C 102(e) as being anticipated 
by Dworkin. The Appellant respectfully traverses the rejections as follows. 

A. Supplemental Discussion Regarding Claimed Subject Matter 

The Appellant has provided a detailed summary of the claimed subject matter in section 
VI above. To supplement the above summary, the Appellant wishes to further discuss one 
particular feature recited in, e.g. claim 1, where upon completion of the computation, a modular 
reduction is performed to reduce the result to a predetermined number of words. As discussed in 
the specification of the present application on page 23, lines 640, the predetermined number of 
words may be thought of as an indication of, e.g., "how many machine words are needed to store 
finite field elements". This is exemplified in terms of a finite field multiplication in the 
specification of the present application at page 16, line 24 through page 17, line 20. In 
particular, at page 16, line 29 through page 17, line 2, it is emphasized that: . .the multiplication 
operation is composed of wordsized multiplications. Again the finite field multiplication is 
composed on wordsized non-reducing multiplications, coupled with a specific reduction engine 
preferably tailored to the specific finite field." [emphasis added] It is clear therefore that 
reduction does not take place during the multiplications (i.e. full reduction) but rather a specific 
reduction takes place at the end. 

For ease in understanding this concept, and as would be understood in the cryptographic 
arts, reducing to a predetermined number of words can be considered as reducing the result to a 
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"word boundary" to accommodate the sizes of various field elements. 

As discussed on page 12, lines 1 7-26 of the specification as originally filed, the reduction 
is performed after the routine (or computation) so that the finite field elements may be 
consistently stored in registers of the same word length, which, as discussed above, can save 
effort in the computation and add randomness. 

Moreover, reducing the result overcomes having to use routines that deal with different 
exact word sizes or using general purpose code built to handle any number of word components, 
which is typically slower (see page 3, lines 5-23). Performing bit shifts for each bit of the 
multiplier results in longer processing time and extra processor operations (see page 4, lines 13- 
15). 

The Applicant has recognized that a predetermined number of words can be chosen to 
accommodate, e.g. a NIST standard polynomial (e.g. see page 23 as discussed above). When 
considering word sized values, leading zero coefficients may be added to the full word size and, 
rather than reducing fully, in the claimed invention, two values may, e.g., be multiplied and then 
reduced, but only to a particular word size. In this way, the effort required for full reduction 
need not be expended and only a specific reduction to a predetermined number of words is 
needed. 

For example, before the value is used, and perhaps following many calculations in the 
u not-fully reduced" form, a final reduction can be made at the end , so as to have a unique value 
as is required, e.g. by standards to employ in elliptic curve cryptography. 

To further assist in the understanding of the above concepts, the Appellant refers to the 
Evidence Appendix, wherein a detailed example of how the claimed invention operates in 
comparison to Dworkin is provided. The evidence has been prepared by Robert J. Lambert, 

In summary, the Appellant has recognized that by reducing the result of the routine when 
performing word sized operations, rather than reducing fully as was done prior, the above 
efficiencies can be achieved and the above drawbacks can be avoided. 

B. What Dworkin Teaches 

Dworkin teaches a finite field multiplier with intrinsic modular reduction. The multiplier 
operates using, e.g. a pair of operand registers 42 and 44, and an arithmetic logic unit (ALU) 4. 
Operation of the ALU is described in column 4, lines 14-5L It should be noted that the 
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Examiner has relied on portions of this passage in rejecting claims 1, 3, 4 and 6. 

The above-noted passage illustrates operation of the ALU for performing finite field 
multiplication. Two elements a and h, which are bit vectors (e.g. b=b0 5 . ,.,bn-l) are multiplied to 
obtain a product C. It can be appreciated that a bit vector is a single series of bits of arbitrary 
length, which represents an element. When performing the multiplication, partial products of the 
multiplicand and each of the bits b\ of the multiplier are formed. It can be appreciated by those 
skilled in the fields of mathematics and cryptography, that in this context, partial products can be 
considered pre- accumulated elements (each being reduced), which are then combined to form 
product C 

As such, in Dworkin, reduction is performed at each step and thus Ml reduction is 
performed during the entire operation, which is in fact what is avoided in the present application 
on appeal. In Dworkin, the partial products are reduced by the modulus if the most significant 
bit of the previous partial product is set (i.e. if it is a 1) - see column 4, lines 32-34. The balance 
of the above-noted passage describes repeated use of the modulus register and shifting of the 
bits. The Appellant, as previously argued, believes that it is clear from this passage that Dworkin 
teaches reducing the partial products, thus performing full reduction, and does not teach reducing 
the result to a predetermined number of words as claimed by the Appellant. 

The Appellant notes that the passage in column 10, lines 43-53, also relied upon by the 
Examiner, also clearly teaches reducing the partial products and not the result of the routine. 

C Appellant's Submission regarding Dworkin 

In order to anticipate under 35 U.S.C. 102(e), each and every element recited in the 
claims must be found in the cited reference. The Appellant respectfully submits that Dworkin 
fails to recite each and every element claimed, in particular performing modular reduction 
subsequent to computing the result and performing word sized operations. As such, Dworkin 
cannot anticipate. 

As noted above, the claims of the present appeal require that the result of the 
computation/routine/intermediate be reduced to a predetermined number of words rather than by 
performing full reduction (i.e. reducing at each step as was previously done), to ensure consistent 
word sizes. Dworkin simply has not recognized the benefits of reducing to a predetermined 
number of words and is in fact entirely silent as to word sized operations. Moreover, it is 
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believed to have been shown that Dworkin clearly teaches reducing at each partial product (i.e. at 
each step of the routine), which is in fact what is avoided by reducing the result at the end, as 
claimed. 

The Examiner further argues in the Advisory Action that column 10, lines 45-52 teaches 
reducing the result. This is clearly a misinterpretation as this passage again teaches reducing 
each partial product - i.e. full reduction. 

The Appellant notes that the previous rejections in view of the Vanstone reference were 
argued on a similar point, namely that the Vanstone reference also teaches reducing partial 
products and does not perform word sized operations. As such, the Appellant believes that the 
Dworkin reference is no more relevant than the previously cited Vanstone reference, which 
appears to have been successfully argued over. 

It is therefore believed to have been shown that Dworkin clearly does not teach every 
element recited in claims 1, 3, 4 and 6 (and those dependent thereon). As such, Dworkin cannot 
anticipate and the rejection under 35 1X5. C. 102(e) is believed to be improper. 

The Appellant also notes that, as discussed in detail above, the claims under appeal deal 
with word sized operations, and reduce the result of the computation to a predetermined number 
of words. The word sized method claimed in the present application under appeal separates the 
full reduction out so that reduction is only needed to be applied when desired (e.g. to supply 
unique representations for ECC algorithms). However, Dworkin only mentions operating on bit 
vectors and even explicitly teaches reducing at each step, thus performing full reduction. As 
discussed above, the Appellant again respectfully submits that Dworkin is entirely silent 
regarding word sized operations and clearly teaches only full reduction at each step. 

The Appellant believes that the Examiner is incorrect in interpreting the teachings in 
Dworkin as word sized operations (see Advisory Action). Operating on word size values rather 
than bit vectors is not arbitrary, and these terms cannot be considered interchangeable as the 
Examiner seems to believe. It is improper to reject a claim as being anticipated on the basis of 
an extrapolation of the teachings of the cited reference, even more so where the Examiner has 
not pointed to any passage in the teachings that would support such an extrapolation. Dworkin 
simply does not teach word sized operations and the Examiner has failed to specifically support 
the basis for this interpretation. Each and every claim in the present application deals with word 
sized values and, for at least this reason, Dworkin cannot anticipate. 
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Accordingly, it is believed that Dworkin fails to teach yet another feature recited in the 
claims under appeal For this additional reason, Dworkin cannot anticipate, 

D. Summary 

It is therefore submitted that, contrary to the Examiner's assertion, Dworkin clearly does 
not teach reducing the result of the finite field operation and, moreover does not teach word sized 
operations. Dworkin thus fails to teach each and every element claimed, and, as such cannot 
anticipate. 

CONCLUSION: 

In view of the foregoing, the Appellant believes that the Examiner has misconstrued the 
passages relied upon in rejecting the claims under appeal as being anticipated by Dworkin, In 
particular, Dworkin clearly does not teach modular reduction upon completion of the 
accumulation, but rather teaches reducing partial products prior to accumulation, Dworkin also 
does not perform word sized operations as claimed but is only concerned with bit vectors. 
Therefore, Dworkin clearly does not teach every element claimed and, as such, cannot anticipate. 

The Appellant respectfully requests that this honourable Board of Patent Appeals and 
Interferences reverse the Examiner's decision in this case and indicate the allowability of claims 
1 and 3-1 1 in this application. 



Respectfully submitted, 
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CLAIMS APPENDIX: 

Listing of the claims involved in the appeal: 

L (previously presented) A method of adding elements of a finite field F r , where m is less 

than a predetermined number n, said method comprising the steps of: 

a) storing a first and a second element in a pair of registers, each of said pair of registers 
comprising said predetermined number of machine words; 

b) establishing an accumulator having said predetermined number of machine words; and 

c) computing for each of said machine words in said accumulator the exclusive-or of the 
corresponding machine words representing each of said first and second elements to obtain a 
representation of a result of the addition of said elements, and, upon completion of said 
computation, performing a modular reduction to reduce said result to a predetermined number of 
words, 

2. (canceled) 

3. (original) A finite field multiplier operable to multiply two elements of one of a plurality 
of finite fields, said finite fields being partitioned into subsets, said multiplier comprising: 

a) a plurality of wordsized finite field multipliers, each suitable for multiplying elements 
of each finite field in a respective subset of said plurality of finite fields; 

b) a finite field reducer configured to perform reduction in said one finite field; 

c) a processor configured to 

i) operate the wordsized finite field multiplier suitable for use with said one finite 
field to obtain an intermediate product; and 

ii) operate said finite field reducer on said intermediate product to obtain the 
product of the two elements, 

4. (previously presented) A method of performing a finite field operation on at least one 
element r, of a finite field, comprising the steps of: 

a) representing each element as a number of machine words; 
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b) performing a wordsized operation on said representations, said wordsized operation 
corresponding to said finite field operation; 

c) completing said wordsized operation for each word of said representations to obtain a 
result; and 

d) performing a modular reduction of said result to reduce said result to a predetermined 
number of words. 

5. (original) A finite field engine for performing a finite field operation on at least one 
element of a finite field chosen from a set of finite fields, said set of finite fields being divided 
into subsets according to their word size, comprising: 

a) a finite field operator for each of said subsets; 

b) a finite field reducer for each of said finite fields; 

c) a processor configured to choose the finite field operator corresponding to the subset 
containing said chosen finite field and the finite field reducer for said chosen finite field and 
apply the chosen finite field operator to said element to produce an intermediate result and apply 
the chosen finite field reducer to said intermediate result to obtain the result of said finite field 
operation, 

6. (previously presented) A cryptographic system comprising: 

a) a plurality of elliptic curves, each specifying elliptic curve parameters and a respective 
finite field; 

b) a plurality of finite field settings corresponding to each finite field; 

c) a plurality of wordsized finite fields, each having routines, each finite field being 
assigned to one of said wordsized finite fields; 

d) a reduction routine for each finite field; 

e) a computational apparatus configured to perform a cryptographic operation by the 
steps of: 

i) selecting one of said elliptic curves; and 

ii) performing a cryptographic function using the routines from the wordsized 
finite field to which the respective finite field corresponding to said selected 
elliptic curve is assigned; said routines including at least one finite field 
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operation and, subsequent thereto, a modular reduction to obtain a result of 
said operation corresponding to a predetermined number of words. 

7. (previously presented) A method according to claim 4 wherein said modular reduction is 
determined by said finite field. 

8. (previously presented) A method according to claim 4 wherein said finite field operation 
is addition. 

9. (previously presented) A method according to claim 4 wherein said finite field operation 
is subtraction. 

10. (previously presented) A method according to claim 4 wherein said finite field operation 
is multiplication. 

11. (previously presented) A method according to claim 4 wherein said finite field operation 
is division. 
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EVIDENCE APPENDIX: 



Example prepared by Robert J. Lambert: 

The following f is the irreducible polynomial used in the NIST standard sectl63kl curve: 
f x A 163+x A 7+x A 6+x A 3-H . 

Tlie improvement is to not to reduce fully, but rather only to reduce to a word boundary. 

When 32-bit words are used, the next word boundary is at 192 bits. We would then reduce with 
this shifted polynomial: 

fw:= sort(expand(x A 29*f)); 

192 36 35 32 29 

fw := x +x+x+x+x 

It can be awkward to write out these polynomial (mod 2) values, so instead they will be 
presented as binary numbers. We will use the convention in this writing that a higher order 
coefficient is written to the left of lower order coefficients, that is, written high to low from left 
to right. This notation is, of course, arbitrary. 

Here are the irreducible and the shifted irreducible written in this way:# 
convert(poIynomiaiToInteger(f), binary); 

100000000000000000000000000000000000000000000000000000000000000000000000000000 

\ 

000000000000000000000000000000000000000000000000000000000000000000000000000000 

\ 

11001001 

convert(polynomiaIToInteger(fw) 5 binary); 

100000000000000000000000000000000000000000000000000000000000000000000000000000 

\ 

000000000000000000000000000000000000000000000000000000000000000000000000000000 

\ 

1100100100000000000000000000000000000 

When we are considering wordsized values, we will, when convenient, write out the leading 0 
coefficients to the full wordsize. For example, the unshifted modulus here is written out to the 
full 192 bits using leading zeros: 
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print(polynomialToBinary(f. fw)); 

000000000000000000000000000010000000000000000000000000000000000000000000000000 

\ 

000000000000000000000000000000000000000000000000000000000000000000000000000000 

\ 

000000000000000000000000000011001001 

Here are several random values, which are only reduced enough to fit in the 1 92 -bit word aligned 
limit: 

a := randomPolynomial(fw): 
b := randomPolynomial(fw): 
c := randomPolynomial(fw): 
polynomialToBinary(a,fw); 

111010010010001111111111110111010001110001000111101000010010101000001101011000 
\ 

01 100001101 10110101 11 11 101010001 10010110110100101 11 1001111111101 11110001011100 

\ 

101011010011100011101001111101001101 
polynomialToBinary(b,fw); 

0001 101 1001 1010001000001 1 100000101010001 101 101 101 1010001 101001 100000010001 1 101 

\ 

100001100111100110010111111011011100011110100111100011000100111111011011110010 

\ 

100000101101110010101111011000111000 
polynomialToBinary(c,fw); 

010101010101 1101 10101000001 1001001 1000010111 11 11101 101001 10001101001000101 1011 

\ 

1000101 100001001 10010101000001 10011 111011 1001 100101000001 110101011 11 1110100001 

\ 

111 101001 11001000001101 10101 11100100 

We can multiply these values, mod 2, without reducing fully, yielding: 

abw := multiplyPolynomial(a,b): 
convert(poIynomialToInteger(abw), binary); 

10001 1 1 1000001 101 1000010001 101 1 1 1 1 1 101 1 11001001 1 1 100001 110101 100001 10101000000 

\ 

0000110101000011101001101 1100000100011100110001 1100011011 11 100000101001 101 11 11 
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\ 

1001001 1011 11 100011 110101000101001 100101 110011 111000101 11 10110101 111 1000000010 

\ 

11001101 101 10100111010110101 1 100101001 H 10101 1 1 10101 01 1 1000101 11110001101 111 11 

\ 

00000100010011111010001010111001110100100000010101111111100100011000 

We still reduce, but only to the wordsize that we are employing, and therefore we don't need to 

expend the effort of full reduction. There are multiple 192-bit strings which reduce (mod f) to the 
same value. 

The utility of not reducing fully is, in part, to save the effort, and to randomize the 
representation, since there are now many ways to write the value, when not completely reduced. 

Here is the wordsized reduced value as described in the patent application: 

abwr reducePolynomial(abw,fw): 
polynomialToBinary(abwr,fw); 

011110010000001110110010000111010100110010110001000110100110000010001111101111 

\ 

1010011 1000001 1111100011 1101 10110101 1001 10101 1101 101001 10101 101001001001001000 

\ 

010000000000010101 1 1 1 1 1 1 100100011000 

There are many ways to arrive at this, for example by wordsized reduction interleaved with 
multiplication, or by full multiplication without reduction followed by wordsized reduction 
(which is what we have just performed). In general, any method using only wordsized reduction, 
not the complete reduction of the older is covered. 

Before we use the value, and perhaps after many calculations in the not fully reduced form, we 
can at the end make a final and ftill reduction, so as to have a unique value as is required by 
standards to employ in elliptic curve cryptography. For example, we might add another value: 

abcwr := addPolynomial(abwr,c): 
polynomialToBinary(abcwr,fw); 

001011000101111000011010001011110010110111001110101011101010011000011110110100 

\ 

001011000000111001110110110111010010010001100010011100111011000010110111101001 

\ 

101101001 110000101 1001001 1001 1111100 

Here is the complete reduction of the multiplication and addition just given (with leading zeros): 
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abcwr := reducePolynomial(abcwr, f): 
po lynom ialToBinary (abcwr, fw) ; 

000000000000000000000000000001 1 100101 101 11001 1 1010101 1 10101001 100001 1 1 101 10100 

\ 

001011000000111001110110110111010010010001100010011100111011000010110111101001 

\ 

10001 10000001 10100101 1 1001 1001010001 
This is now contrasted with the Dworkin reference: 

The Dworkin reference would have used the fully reduced representation for the values a and b. 
The fully reduced representations are given by: 

ar := reducePolynomial(a, f): 
br := reducePolynomial(b, f): 
cr := reducePolynomial(c, f): 
polynomialToBinary(ar,f); 

101000111000100011110100001001010100000110101100001100001101101101011111101010 
\ 

001100101101101001011110011111111011111000101110000111111110010101001000111000 

\ 

0101110 

polynomialToBinary(br,f); 

001010100011011011011010001101001100000010001110110000110011110011001011111101 

\ 

101110001111010011110001100010011111101101111001010010101111101111110001011011 

\ 

1000000 

polynomialToBinary(cr,f); 

010011000010111111110110100110001101001000101101110001011000010011001010100000 

\ 

110011111011100110010100000111010101111111010000110001110111010000000011010100 

\ 

1010010 

When multiplying, the partial products are fully reduced at each step in Dworkin. The partial 
products of the multiplication of Dworkin are printed completely below (prefixed with the index 
and comma, and counting down, as was done in the outer loop of the Dworkin teachings): 

ab := multiplyPoIynomialFullyReduced(ar,br,f): 
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162, 

00101010001101 101101101000110100110000001000111011000011001 1110011001011 111 101 

\ 

101110001111010011110001100010011 11110110111 100101001010111 110111111000101 1011 

\ 

1000000 
161, 

0101010001 101 101 101 1010001 101001100000010001 1101 100001 1001 11 1001 100101 11 11 101 1 

\ 

011100011110100111100011000100111111011011110010100101011111011111100010110111 

\ 

0000000 
160, 

100000101110110110110010111001111100001010110101110011111100111111100100001011 

\ 

010110110010011100110111101011100001011010011100011000010001010000110100110101 

\ 

1000000 
159, 

000001011101101101100101110011111000010101101011100111111001111111001000010110 

\ 

101101100100111001101111010111000010110100111000110000100010100001101001101010 

\ 

1001001 
158, 

0000101 1101 101 101 100101 11001111 1000010101 10101 11001 lllllOOllll 11 10010000101 101 

\ 

011011001001110011011110101110000101101001110001100001000101000011010011010101 

\ 

0010010 
157, 

000101110110110110010111001111100001010110101110011111100111111100100001011010 

\ 

110110010011100110111101011100001011010011100011000010001010000110100110101010 
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\ 

0100100 
156, 

000001001110110111110100010010001110101111010010001111111100001010001001001000 

\ 

00001010100001 1 1 1000101 101 10100010010010101 1111 10101 101 1 101 1 1000101 1 1 100001 1 1 1 

\ 

0001000 
155, 

0010001 11 1101101001 10010101001010001011 100101010101 111001011 100111011001 101 101 

\ 

101011011111101111100111010110001101111000000111111111011000101010001001000101 

\ 

1010000 
154, 

011011011110110010111111011111101110111011011011101110100100111101111000100110 

\ 

111000110000001100111111001110000100011101110110101100011110111011100011010000 

\ 

1100000 
153, 

110110111101100101111110111111011101110110110111011101001001111011110001001101 

\ 

110001100000011001111110011100001000111011101101011000111101110111000110100001 

\ 

1000000 
152, 

101101111011001011111101111110111011101101101110111010010011110111100010011011 

\ 

100011000000110011111100111000010001110111011010110001111011101110001101000010 

\ 

1001001 
151, 

011011 1 101 100101 11111011111 1011101 11011011011101 11010010011 11011 11000100110111 
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\ 

000110000001100111111001110000100011101110110101100011110111011100011010000100 

\ 

1011011 
150, 

1111010011111 10100101101 1101 1010001011010011010101 1001 11 1 100101101000010010011 

\ 

100010001100011100000010000011011000110000010010010101000001010111000101010010 

\ 

mono 

149, 

111010011111101001011011101101000101101001101010110011111001011010000100100111 

\ 

000100011000111000000100000110110001100000100100101010000010101110001010100100 

\ 

0100101 
148, 

110100111111010010110111011010001011010011010101100111110010110100001001001110 

\ 

001000110001110000001000001101100011000001001001010100000101011100010101001001 

\ 

0000011 
147, 

101001111110100101101110110100010110100110101011001111100101101000010010011100 

\ 

010001100011100000010000011011000110000010010010101000001010111000101010010011 

\ 

1001111 
146, 

01 1001011 1100100000001 11 100101 1000010011 11011000101 111111000100011101 111000101 

\ 

001101001000010011010001010100010011101001011100000010111010011110100101111101 

\ 

0010111 
145, 
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11 1000011 11 11 110U010I010001 100011 1001110011111 1101 1110000101 101000101011 101 11 

\ 

110100011111110101010011001010111000111111000001010111011011010010111010100001 

\ 

1101110 
144, 

111010011100101101110000000001010000111011110001101110110110011011100000010010 

\ 

00011011000011 10010101 11110111 1011 1001001 11 1101 11 11 10001 100100101000010001 1001 

\ 

1010101 
143, 

11 11 100110100000001 11010001 11 1101101 110101 101101 101 101011 11 100010000101 101 1001 

\ 

100011101110100001011110001101000011001010001110101010011101111011111001101001 

\ 

0100011 
142, 

111100110100000001110100011111011011101011011011011010111110001000010110110011 

\ 

000111011101000010111100011010000110010100011101010100111011110111110011010011 

\ 

0001111 
141, 

110011001011011000110010110011111011010100111000000101001111100011100110011011 

\ 

100000110101010110001001010110010011000101000011111011011000000000010111111100 

\ 

0010111 
140, 

1001 100101101 10001100101 1001 111 101 101010011 1000000101001 111 10001 110011001 101 11 

\ 

000001101010101100010010101100100110001010000111110110110000000000101111111001 

\ 

1100111 
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139, 

001100101101 10001 1001011001 11 110110101001 11000000101001111100011 10011001 1011 10 

\ 

000011010101011000100101011001001100010100001111101101100000000001011111110010 

\ 

0000111 
138, 

011001011011000110010110011111011010100111000000101001111100011100110011011100 

\ 

0001 101010101 100010010101 1001001 1000101000011 1110110110000000000101 1111 1 100100 

\ 

0001110 
137, 

1100101 101 10001100101 10011 1110110101001 110000001010011 1110001 11001 1001 101 11000 

\ 

001 101010101 100010010101 1001001 100010100001 1 1 1101 101 10000000000101 1 1 1 1 1 1001000 

\ 

0011100 
136, 

101111001111000010000011110000100110011110001100010111000010000000000110001101 

\ 

110100100100010111011010101011111101001100000100111110101111100100001111001010 

\ 

0110001 
135, 

0 1 1 1 1 00 1 1 1 1 00001 00000 1111 0000 1 001 100 1 1 1 1 0001 1 0001 01 1 1 0000 1 00000000001 1 0001 1 0 1 1 

\ 

101001001000101110110101010111111010011000001001111101011111001000011110010101 

\ 

0101011 
134, 

1111001111 0000 1 00000 1 1 1 1 0000 1 00 1 1 00 1 1 1 1 000 1 1 000 1 0 1 1 1 0000 1 0000000000 1 1 000 1 1 0 1 1 1 

\ 
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01001001000101 1101 101010101 11 11 101001 1000001001 11 110101 11 1100100001 1 1100101010 

\ 

1010110 
133, 

110011011011001011000100001001111111110011101100001000100011110011111010010011 

\ 

001010101101101000100100111101110110001101011110100111010011001110001000001111 

\ 

0100101 
132, 

100110110110010110001000010011111111100111011000010001000111100111110100100110 

\ 

010101011011010001001001111011101100011010111101001110100110011100010000011111 

\ 

0000011 
131, 

000111001111110111001010101010110011001100111110010010111100111100100010110001 

\ 

0001001 1 1001 1 10001 1000100101010001 1 101 1000000011001 1 1 1 10001 10101 1 1010001 100100 

\ 

0001111 
130, 

001110011111101110010101010101100110011001111100100101111001111001000101100010 

\ 

001001 1 1001 1 10001 10001001010100011 101 100000001 1001 1 1 1 10001 10101 1 1010001 1001000 

\ 

0011110 
129, 

0101 1001 1 1000001 1 1 1 100001001 100000001 10001 11011111 101 10000000000010000001 1 1001 

\ 

111101101000010101111000110110000010001101110101101100100010110010110111001011 

\ 

1111100 
128, 
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1 0 I 1 00 1 1 1 00000 1 11 1 1 0000 1 00 1 1 0000000 1 1 000 11 1 0 1 1 1 1 1 1 0 1 1 00000000000 1 000000 1 1 1 00 1 1 

\ 

111011010000101011110001101100000100011011101011011001000101100101101110010111 

\ 

1111000 
127, 

01 1001 1 1000001 1 1 1 10000 I 001 100000001 10001 1 101 1 111101 10000000000010000001 1 1001 1 1 

\ 

1101 101000010101 11 10001101 10000010001 101 110101 101 1001000101 100101 101 1100101 110 

\ 

0111001 
126, 

110011100000111110000100110000000110001110111111011000000000001000000111001111 

\ 

1011010000101011 11000110110000010001 101 110101 1011001000101100101 1011 100101 1100 

\ 

1110010 
125, 

1 00 1 1 1 00000 11111 00001 00 1 100000001 1 000 111011111101 100000000000 1 000000 1 1 1 00 1 1 1 1 1 

\ 

011010000101011110001101100000100011011101011011001000101100101101110010111000 

\ 

0101101 
124, 

00 1 1 100000 11111 0000100 1 1 00000001 1 000 1 1 1 01 1 1 1 1 1 0 1 1 00000000000 1 000000 1 1 1 00 1 1 1 1 1 0 

\ 

110100001010111100011011000001000110111010110110010001011001011011100101110001 

\ 

0010011 
123, 

0101 1010010010101 1111 100001 101 1 1 1 101 1 10101 1 10101 1 100001 100101 1001 1 1 10010000000 

\ 

000110011010101011000111100000010010011000010101110000011101011000111010111001 

\ 

1100110 
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122, 

1001 11101010001 1001000100101 101 101 11 101001 1001010100010101 10010100101 II 11 11101 

\ 

10001011 1010000101111 1101000101 1101101 11010100101 1001001010101 11 10000100101000 

\ 

0001100 
121, 

00111 10101000110010001001011011011 1 1010011001010100010101 1001010010111 1 1 1 1 101 1 

\ 

0001011101000010111111010001011101 101 1 101010010110010010101011 1100001001010001 

\ 

1010001 
120, 

010100001011101001010011010110010010100100011011110101101010100001110100001011 

\ 

100101100111000100001011101001110010011000110010011011111010010111100011111000 

\ 

1100010 
119, 

101000010111010010100110101100100101001000110111101011010101000011101000010111 

\ 

001011001110001000010111010011100100110001100100110111110100101111000111110001 

\ 

1000100 
118, 

011010001 101 11 11 100101 1101010000011001001 1100001 1001100110011 1010001 101 1010011 

\ 

111000010011000011011111000101010110001110110000111101000110110001111110111001 

\ 

0000001 
117, 

111110111000100111110100100101000000100101001101111100000000011011111101011010 

\ 

01111010100101010100111110100011001111000001 1000101000100010001 100001 100101001 

\ 
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1000010 

116, 

111101110001001111101001001010000001001010011011111000000000110111111010110100 

\ 

11 110101001010101001 1111010001 1001 11 10000011000101000100010001100001 1001010010 

\ 

1001101 
115, 

11101110001001 111 10100100101000000100101001101 1 1 1 10000000001101 1111 10101101001 

\ 

1 110101001010101001 1111010001 10011 11000001 1000101000100010001 100001 10010100100 

\ 

1010011 
114, 

1101110001001 111 10100100101000000100101001 10111110000000001 101 11 11 10101 101001 1 

\ 

110101001010101001111101000110011110000011000101000100010001100001100101001000 

\ 

1101111 
113, 

101110001001111101001001010000001001010011011111000000000110111111010110100111 

\ 

101010010101010011111010001100111100000110001010001000100011000011001010010000 

\ 

0010111 
112, 

0101 101 10000100001001000101 10101 1 1 101001001 100001 100001 1 1 1 10001 101 1001 101 10010 

\ 

111010100101110100000101111011100111100001101101000011101001101001100101111010 

\ 

0100111 

111, 

1001 1 100001001 100100101 10101 1 1 1 1000100101 1 1011 1 1010001001 1 1 1 1010000001 1001 1000 

\ 
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01101 10001001110111 11010010101010000101 11010001 10101011 1 11001 11 1001 11010101 111 

\ 

0001110 
110, 

001110000100110010010110101111100010010111011110100010011111010000001100110000 

\ 

110110001001110111110100101010100001011101000110101011111001111001110101011111 

\ 

1010101 
109, 

011100001001 100100101101011 111000100101 110111101000100111 11010000001 1001100001 

\ 

101100010011 101 11 11010010101010000101 110100011010101 1111001 11 1001 11010101 111 11 

\ 

0101010 
108, 

111000010011001001011010111110001001011101111010001001111101000000110011000011 

\ 

01100010011101 11110100101010100001011 1010001101010111 110011 110011101010111 1110 

\ 

1010100 
107, 

110000100110010010110101111100010010111011110100010011111010000001100110000110 

\ 

110001001110111110100101010100001011 1010001 10101011111001 1110011 1010101 11 1 1100 

\ 

1100001 
106, 

101011101111111110110001110101101001110101100110010111000111110000000111110000 

\ 

001100010010101 11011101100101000100011 110001001 1101100110001110010100110100011 

\ 

1001011 
105, 
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0111011 11100100110111001 100110011 11 1 10100100001001 11 101 1 1 10001001 100010001 1101 

\ 

1101 101010100011 100001 1111011000111001010101 11 1000101 1001 100001010111 10001 1101 

\ 

0011111 
104, 

111011111001001101110011001100111111010010000100111101111000100110001000111011 

\ 

101101010100011100001111101100011100101010111100010110011000010101111000111010 

\ 

0111110 
103, 

111101010001000000111100010100110010100110000111001011000010111111011010001010 

\ 

110100100111 101011101 1101 110101001 101 110000000011 11 U001 111 10001000000001011 10 

\ 

1110101 
102, 

110000000001011010100010100100101001001110000000100110110110001101111111101000 

\ 

0001 11000000000100101 10001011 1010010011 101 11 1010101 1100100011001 11 1100000001 11 

\ 

1100011 
101, 

100000000010110101000101001001010010011100000001001101101100011011111111010000 

\ 

001110000000001001011000101110100100111011110101011100100011001111100000001110 

\ 

0001111 
100, 

001010100110110001010000011111101000111010001100101011101011000100110101011101 

\ 

1 10010001 1 1 10000010000001 1 1 1 1 10101 1001 101001001 1 10101 1 101001 1 100001 100010001 10 

\ 

001011 1 
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99, 

011111101110111001111010110010011101110110010111100111100101111010100001000110 

\ 

00101001000101000111000001 110011001 10110010111 100001011 11100001 110010011010111 

\ 

1101110 
98, 

111111011101110011110101100100111011101100101111001111001011110101000010001100 

\ 

01010010001010001 110000011 10011001101 100101 11100001011 111000011 1001001 101011 11 

\ 

1011100 
97, 

110100011000111100110001000100111011011011010000101110100100011001001111100101 

\ 

0001110010100101001 1000001000101001000100000000100010101 111 10101101 11 100000101 

\ 

0110001 
96, 

1010001 10001 1 1 1001 100010001001 1 101 101 101 1010000101 1 1010010001 1001001 1 1 1 1001010 

\ 

001110010100101001100000100010100100010000000010001010111110101101111000001011 

\ 

0101011 
95, 

011011000000101000011110011110100001101111001100001010100010010111110101101001 

\ 

1100101001100000001 1000010011 10101 11001101 1111010001110100101 10100000001001100 

\ 

1011111 
94, 

1 1 1 10010001000101 1 1001 101 10000001 1 1 101 1 1000101 10100101 1 1011 101 1 100100000101 110 

\ 

00101 1000011010010010000101 1001 10001 1101 1000001 101 1 1000010100001 1 1 1 1001 1000010 

\ 
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1111110 

93, 

110011100111001100010111101101010010111010100011111011011101001010001010100001 

\ 

111000001001 11011 10100001 1101 11 11100000001 11 1111 1010101 1 1011 10000001011 10111 11 

\ 

1110101 
92, 

101101101 10100001 11 101010101 111010011101 11001001000110001001 1001 11011 1101 11110 

\ 

onnoon iooi moioioooooioioi iooi nioi nooooiiooooi i lonoooion noii n nooioi 
\ 

1100011 
91, 

0100011 11001011 1001 10000100010011 11 110110001 11001 111001000001 11 101 110110000001 

\ 

oiooiononoioiooioioooiooiooioioooonoooinoioioinoooinionoooiooi nooioooi 
\ 

1001111 
90, 

loiooioiooonoooionioiiooioonioononoionon iooiooi nooioooioooiooi in in n 

ooion 10001000000101001 1 liooooi n i looon iooiooi noioiooiooiooonononon nooo 
\ 

1011110 
89, 

01001010001 1000101 1 101 1001001 1 1001 101 10101 1011 IOOIOOI 1 100100010001001 111111110 

\ 

0101 1100010000001010011 1100001 11 110001 11001001 1101010010010001 101 101 101 11 10000 

\ 

1110101 
88, 

101 1 1 11001010100001 10110101010000001 1010010100100101 1 11 1 101 1010001010100000001 

\ 
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00000000011 10101101111 10100001 1001 110101001 101 1111 101 110011 101 100100011011 1010 

\ 

0101010 
87, 

011111001010100001101101010100000011010010100100101111110110100010101000000010 

\ 

000000001110101101111101000011001110101001101111110111001110110010001101110101 

\ 

0011101 
86, 

110100110110011000000000100101001010100111000111101111011110110110011011111001 

\ 

101 11001001000100000101 11001000000101 11 1101001 101 11 1001 10010001011 101010110001 

\ 

1111010 
85, 

101001 101 1001 10000000001001010010101001 110001 11101 11 1011 11011011001 101 11 110011 

\ 

011100100100010000010111001000000101111101001101111001100100010111010101100010 

\ 

0111101 
84, 

010011011001100000000010010100101010011100011110111101111011011001101111100110 

\ 

111001001000100000101110010000001011111010011011110011001000101110101011000101 

\ 

0110011 
83, 

1001 101 1001 10000000001001010010101001 110001 11 101 11 1011 1101 101 100110111 11001 101 

\ 

110010010001000001011100100000010111110100110111100110010001011101010110001010 

\ 

11001 10 
82, 
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0001 1100010101 101 101001101 1111 100101 11001 11 101010001 1101 11 10010101 1101011001 10 

\ 

001010101101010001001000100010110000000100010110011110001101010101011101001111 

\ 

1000101 
81, 

000100101001 101 101 1 1 11001 100100001 11 100101 1001001 1 1 1 100011 1 10110001000001 10001 

\ 

111011010101110001100000100111111111100101010101101110110101000101001011000100 

\ 

1001010 
80, 

00100101001 1011011111001100100001 11 1001011001001 ll HOOOll 1 10110001000001100011 

\ 

110110101011100011000001001111111111001010101011011101101010001010010110001001 

\ 

0010100 
79, 

010010100110110111110011001000011110010110010011111000111101100010000011000111 

\ 

101101010111000110000010011111111110010101010110111011010100010100101100010010 

\ 

0101000 
78, 

101111101110110100111100011101110000101110101001000001001000110111001101110010 

\ 

11010010000101 11111 10101011 101 1000110001110101001001000001 1 10001 101010011 11111 

\ 

0010000 
77, 

011111011101101001111000111011100001011101010010000010010001101110011011100101 

\ 

101001000010111111101010111011000110001110101001001000001110001101010011111111 

\ 

1101001 
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76, 

1 1010001100000100010101111 1010001 1101 110001010101 101000100001011 11111 1001101 10 

\ 

1 11100001010101 10010010001010001001 11 1000010101 10000101 1001 11101010101 10100100 

\ 

0010010 
75, 

100010010011001010001101111001010001110011011011011000010010101100110010010000 

\ 

0101 1001 10100010101 110010010101 11000001 100101 11 10101 11001000000101011 100010010 

\ 

0101101 
74, 

0001001001 1001010001 101 11 10010100011 1001 101101 101 1000010010101 1001 1001001 00000 

\ 

101100110100010101110010010101110000011001011110101110010000001010111000100101 

\ 

0010011 
73, 

000011101111110011101101101000001011001111100011010001111001000000000010111100 

\ 

110111100111111000010101001001111111011111000100001110001111111010000000010001 

\ 

1100110 
72, 

001 101 1 1 1 1001 1 1 10000000101 1 10101 101001 1 10100100001001 1000001 1 1001 1001 1 10000100 

\ 

00000100000010001 101 101 1 1 10001 10000101001 1 1 10001001 1 101 1000001 101 1 1 10001 11 1000 

\ 

0001100 
71, 

011011111001111000000010111010110100111010010000100110000011100110011100001000 

\ 

0000100000010001 101 101 1 1 10001 10000101001 1 1 10001001 1101 1000001 101 1 1 10001 1 1 10000 

\ 
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0011000 

70, 

111101010000101011011111111000100101110110101111111100110100111111110011101101 

\ 

101010001 10101 11 1001 II 1010010001 10101000101 11 101 101001 101 1100000001 101 101 11011 

\ 

1110000 
69, 

II 10101000010101101 111 11 1100010010111011010111 It 111001101001 11 11 111001 1101 1011 

\ 

01010001 101011 11001 11 101001000110101000101 11 101 101001101 1100000001101 101 1101 10 

\ 

0101001 
68, 

11010100001010110111111 11000100101 110110101 11111 110011010011 1111110011101 10110 

\ 

101000110101111001111010010001101010001011110110100110111000000011011011101101 

\ 

0011011 
67, 

1000001001 10000000100101001001 1000101 1011 1 1 100010101 100101000011010101 10010000 

\ 

111111100100100000000101000001001011111010010100011111011111101001000110000000 

\ 

0111111 
66, 

000001001100000001001010010011000101101111100010101100101000011010101100100001 

\ 

11111 10010010000000010100000100101 1 1 1 101001010001 1 1 1 101 1 1 1 1 1010010001 100000001 

\ 

0110111 
65, 

001000111011011001001110101011000111011101001011101001100011000110010010111110 

\ 
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010000011101010011100101100110110000000100101000101111010001001011101001011001 

\ 

0101110 
64, 

011011010101101001000111011011000010111000011001100011110101111111101110000001 

\ 

001110110101110100111010101111111111100100101000001100001101111000100011101001 

\ 

0011100 
63, 

11110000100000100101010011 101 10010011100101 111011 10111011000001 1000101 1111 11 11 

\ 

110011100100111010000100111101100000100100101001001010110100011110110110001001 

\ 

1111000 
62, 

11001011001 100100111001111101101111110011 1 11010101111000001 110101 1100100000010 

\ 

001001000110100111111000011001011110100100101011000111000111010010011101001001 

\ 

1111001 
61, 

100101100110010011100111110110111111001111101010111100000111010111001000000100 

\ 

010010001101001111110000110010111101001001010110001110001110100100111010010010 

\ 

0111011 
60, 

001011001100100111001111101101111110011111010101111000001110101110010000001000 

\ 

10010001 101001 11 11 100001 100101 111010010010101 10001 110001 1101001001 110100100101 

\ 

0111111 
59, 
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01 110011 10100101010001010101 101 100001 11 100100101000000101 110101 11 1 101011 101 100 

\ 

1001 101 11011101 100110010101001 101011001000100001 101010010101 11 1100011000010001 

\ 

0111110 
58, 

11001 1010111 110001010000100000101101 11101 10001001 10001 101 110101100011 100100100 

\ 

100011111000001010010100110001001001111100111010000110000100010111000001111001 

\ 

0111100 
57, 

1 01 100001 1001 1 1001 1 1 1011001 1000101 11110100000111010011101 110101011110010110100 

\ 

101001111111000111011000000000001100010100001101011110100111000001110010101000 

\ 

11 10001 
56, 

010010111010101000101100010101100011101010000000010111101110100100101110010100 

\ 

111101110001011101000001100010000111000101100011101111100001101100010100001011 

\ 

1101011 
55, 

101 11 10101100010100000101001100010110101100011 10011 1111011101 11010010111010100 

\ 

010101101101101001110010100110010001100110111110001101101100110111011001001100 

\ 

0010110 
54, 

010100001 11 100111 1011 111000001011010101 110010010001 11110111000011 1100101010101 

\ 

000101010100000000010100101110111100100000000101001001110110000001000011000010 

\ 

0100101 
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53, 

100010111101000101100100001111111001011110101010101111101111111100000001010111 

\ 

1001001001110100110110001111 11100110101101 110011000001000011101101 1 10111011 111 

\ 

0001010 
52, 

0011 1101 100101000001001001001011 11 10111 11 101 101 1101 111 101 100001011001001010010 

\ 

100111000001110101000000011101010010110110011111010000101000110100011111100100 

\ 

0011101 
51, 

0111 101 1001010000010010010010111 110111 1 1101101 1 101 1 1 1 1011000010110010010100101 

\ 

001 11000001 1 10101000000011 1010100101 101 1001 1 1 1 10100001010001 1010001 1111 1001000 

\ 

0111010 
50, 

110111000110011010010011000110110111111111100000001110000011011111101110110111 

\ 

1 100100010000001 1 1 1 100000101 1 10101001 10100000100010000001 1001 1 1 1 10001 1 1 100101 1 

\ 

0110100 
49, 

100100101111101111111100000000100011111101001110101100110101001100010110010010 

\ 

001010011 II 1011 100010001001100110110000101110001110010110110010011 101 111001100 

\ 

1100001 
48, 

000011111100000100100010001100001011111000010011101001011001101011100111011001 

\ 

111010110001101011010011111011110011100110011010110111000011001000101111000011 

\ 
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1001011 

47, 

001101011011010010011110010101011011110010101001100010000000100100000101001110 

\ 

011011101100000101010110010101111000100001001100111100101001111110101111011100 

\ 

1010110 
46, 

010000010101111111100110100111111011100111011101110100110010111011000001100001 

\ 

0110010101 1101 100101 11010010011011 10101 11 1100000101011 111 100010010101 111100010 

\ 

1101100 
45, 

100000101011111111001101001111110111001110111011101001100101110110000011000010 

\ 

110010101110110010111010010011011101011111000001010111111000100101011111000101 

\ 

1011000 
44, 

000001010111111110011010011111101110011101110111010011001011101100000110000101 

\ 

100101011101100101110100100110111010111110000010101111110001001010111110001010 

\ 

1111001 
43, 

000010101111111100110100111111011100111011101110100110010111011000001100001011 

\ 

0010101 11011001011101001001101110101111100000101011111 100010010101111100010101 

\ 

1110010 
42, 

001 11111 11001000101 1001 1110011 110101 11010101001111 1100011 10100001101001 1101011 

\ 
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111011111001000100100011111001110100010101110011101101101011000100001001110000 

\ 

0100100 
41, 

01 1 1 1 1 11 10010001011001 11 10011 1101011 1010101001 11 1110001 1101000011010011 10101 11 

\ 

1101 1 1 1 100100010010001 1 1 1 1001 1 101000101011 1001 1 101101 10101 1000100001001 1 100000 

\ 

1001000 
40, 

1 1010101000101000001010100001001 101 10101 1 10000010000010001 1 11111 10000101010010 

\ 

000001101011000001111110000101001110111010110111100100000011111111010110011010 

\ 

1010000 
39, 

100000000001111011110000001001111010101100001100110010111100001111000001011001 

\ 

10110101100101000000110110100000001001 10000101 1001101010100001000101 1101101111 

\ 

0101001 
38, 

001010100000101100111010011110111001011010010111010101001011101101001001001110 

\ 

110100111101110011101010110010011011011101010101100111111111001101001010000100 

\ 

1011011 
37, 

01010100000101 1001 1101001 11 101 1100101 101001011101010100101 1101101001001001 1101 

\ 

101001111011100111010101100100110110111010101011001111111110011010010100001001 

\ 

0110110 
36, 
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101010000010110011101001111011100101101001011101010100101110110100100100111011 

\ 

010011110111001110101011001001101101110101010110011111111100110100101000010010 

\ 

1101100 
35, 

010100000101100111010011110111001011010010111010101001011101101001001001110110 

\ 

100111101 11001 11010101 1001001 101101 11010101011001 111 111 1 1001 101001010000100100 

\ 

0010001 
34, 

101000001011001110100111101110010110100101110101010010111011010010010011101101 

\ 

001111011100111010101100100110110111010101011001111111110011010010100001001000 

\ 

0100010 
33, 

01 10101 10101000110010101010001 1000010010011001000101010001010101 11 101 1001001 II 

\ 

1100001 101101001 101010001011 111 10001000111001010101 10100100100101011001 1001010 

\ 

1001101 
32, 

111111001001010111110000101110001110010001000110011010111001011100010010110010 

\ 

001111100010011110100000111101111101100011101100001000111101111010010111001110 

\ 

1011010 
31, 

1101001 10001 1101001 1101101000101000010000000001000010100000100101 1 101 1 1001 1001 

\ 

110001001011 1011 101 1000001100110010010101010000100001101010001 1011011 11 1000111 

\ 

0111101 
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30, 

1000110000001 I0010I01 100101 11 11011010000100010101110101100011001000101 11001 110 

\ 

00110001 1000001 1 100100010100010101 101 1 100011 101 10101000001 1 101 1001001 11 1010100 

\ 

1110011 
29, 

0011001000101 111 1000001 10100100101100001 1001101100010101000011101 1100101 100001 

\ 

1101101 111110011 11010011000000110010011 1000011 111 11010100001011101101 11 1110011 

\ 

1101111 
28, 

01001 1 1001 101001 1 101 1 100101001 100000001 11011 10001 1 10100100100001000000001 1 1 110 

\ 

000011110001001101010111100011111011010101100110100111101101010100101110111100 

\ 

0011110 
27, 

101101101110010101100011011110001100011111111111000100010111111011001010000001 

\ 

101001101101001001011110100101101001000110110100011101110101000110101100100011 

\ 

1111100 
26, 

010001111111110000011100110001010100111101110000111000011100000101011111111110 

\ 

11 1101010101000001001 100101001001 101 100000010001101001000101 10001010100001 1101 

\ 

1110001 
25, 

100011111 111 1000001 11001 10001010100111101 11000011100001 110000010101 11 11 111 1101 

\ 

111010101010000010011001010010011011000000100011010010001011000101010000111011 

\ 
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1100010 

24, 

0001 1 1 1 1 1 1 1 1000001 1 1001100010101001 1 1101 1 100001 1 100001 1 10000010101 11111111 101 1 

\ 

1101010101000001001 100101001001101 100000010001 101001000101 10001010100001 110110 

\ 

0001 101 
23, 

00010101 1 10101 10001 1 1 1000001 1 110101 1 101 100001001 1 1001 101001 101 10001 10100001010 

\ 

000100100111011010010100101011110011101111110100011010000011111010110010110111 

\ 

1011010 
22, 

001010111010110001111000001111010111011000010011100110100110110001101000010100 

\ 

001001001110110100101001010111100111011111101000110100000111110101100101101111 

\ 

0110100 
21, 

011111010110111000101010010011100010110010101001111101111110010000011011010101 

\ 

1111000100101 11010100011001 1010100010100101010001 110101000000001001 11010000101 

\ 

0101000 
20, 

111110101101110001010100100111000101100101010011111011111100100000110110101011 

\ 

11 1000100101 1101010001 1001 1010100010100101010001 1 10101000000001001 1 10100001010 

\ 

1010000 
19, 

110111111000111001110011000011000111001000101001000111001010110010100110101010 

\ 
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0111110001001 11001 111 10101011101 101010011101 10101 110001011 II 1111000110010011 11 

\ 

0101001 
18, 

101 1 1 1 1 10001 1 1001 1 1001 100001 10001 1 10010001010010001 1 10010101 100101001 101010100 

\ 

1111 10001001 11001 1111010101 1101101010011 101 10101 110001011 111 11 10001100100U1 11 

\ 

0011011 
17, 

011111 10001 1100111001 10000110001110010001010010001110010101 100101001 1010101001 

\ 

11110001001 11001 1111010101 1101 10101001 1101 10101 1100010U 11111 10001 10010011 1111 

\ 

1111111 

16, 

110101100100010101000010010101110101000111000110001001100101100111111110101110 

\ 

010110101000011100011011011001001011010110101110010111010000001100111000100100 

\ 

0111110 
15, 

101011001000101010000100101011101010001110001100010011001011001111111101011100 

\ 

101101010000111000110110110010010110101101011100101110100000011001110001001001 

\ 

0110101 
14, 

0101 100100010101000010010101 1 101010001 1 10001 10001001 100101 1001 111111 10101 1 1001 

\ 

011010100001110001101101100100101101011010111001011101000000110011100010010011 

\ 

0100011 
13, 
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101100100010101000010010101110101000111000110001001100101100111111110101110010 

\ 

110101000011100011011011001001011010110101110010111010000001100111000100100110 

\ 

1000110 
12, 

010011100110001011111111010000011101110011101100101001101010001100100000011000 

\ 

0001000010000101010001 111 100001010100001 1001 1 1001001 10101 100100001 1 1 10000101 1 1 

\ 

0000101 

11, 

101101101111001100100100101101110111100101010111100011100111101010001011001101 

\ 

1001 1001 1 1 1 1 1 1 1001 1 1 1 1 1000001 100101 1 10000100000001 1 1 1 1 1 101 10101 100000001 110101 

\ 

1001010 
10, 

010001111101000010010011010110100011001000100001110111111100100111011101100110 

\ 

100010110000100000001101100100001000101111111001101101000010110111110010110001 

\ 

0011101 
9, 

100011111010000100100110101101000110010001000011101111111001001110111011001101 

\ 

000101100001000000011011001000010001011111110011011010000101101111100101100010 

\ 

0111010 
8, 

000111110100001001001101011010001100100010000111011111110010011101110110011010 

\ 

00101 10000100000001 101 100100001000301 11111 1001 101 1010000101 101 1 1 1 100101 1000101 

\ 

0111101 
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7, 

001111 10100001001001101011010001 1001000100001 110111 11110010011 101 1101100110100 

\ 

0101 10000100000001 101 1001000010001011 11 1 11001 1011010000101 1011 1 1 100101 10001010 

\ 

1111010 
6, 

01 1 1 110100001001001 10101 1010001 1001000100001 11011 1 1 1 1 1001001 1 101 1 101 1001 101000 

\ 

10110000100000001101100100001000101111 111001101 1010000101101 111100101 100010101 

\ 

1110100 
5, 

110100000010010010110001011100101000010010110101001110100000011101111000101100 

\ 

110110011111010101000011100110001000010001001111110011110100010110101001110000 

\ 

0101000 
4, 

101000000100100101100010111001010000100101101010011101000000111011110001011001 

\ 

101100111110101010000111001100010000100010011111100111101000101101010011100001 

\ 

0011001 
3, 

0110101010100100000111 111 11 II 110110100100101 1010001010110010000100101001001 110 

\ 

110111110010000111111111111010111110101001000110011101111110110101010110011000 

\ 

0111011 
? 

111 11 1110111 111011100101 11001001011001000011 1010100101010111 11 101001 1001 100000 

\ 

000001101011011100001110010111100010111111110101101001010010000101011101101011 

\ 
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0110110 

1, 

110101001100101100010001 101001 10000010001111101 11 1101001 110000011111 10001 11 101 

\ 

101101011001101011101101001101011010010010010010000000001011100101001010001100 

\ 

1100101 

o, 

101010011001011000100011010011000001000111110111110100111000001111110001111011 

\ 

011010110011010111011010011010110100100100100100000000010111001010010100011000 

\ 

0000011 

As can be seen in the last iteration of the loop the result of this complete reduction multiplication 
is: 

polynomiaIToBinary(ab, f); 

101010011001011000100011010011000001000111110111110100111000001111110001111011 
\ 

011010110011010111011010011010110100100100100100000000010111001010010100011000 

\ 

0000011 

At this point, to mirror the calculation which we performed 

without complete reduction, we can add the completely reduced value c: 

abc := addPolynomial(ab, cr): 

Here we see that the final mathematical value of the two methods are the same, modulo the 
irreducible, although the wordsize method separated the full reduction out so that is need only be 
applied when desired (for example to supply the unique representation used in an ECC 
algorithm). Many other operations (such as additions, squarings and inversions) might also be 
performed without full reduction; only the final result need be reduced to comply with standard 
elliptic curve methods such as signatures or key agreements. The final reduced values are the 
same. After final reduction there is zero difference between the results: 

(abcwr - abc) mod 2; 

0 
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RELATED PROCEEDINGS APPENDIX 



NONE 

21599720.2 
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